NIST 800-171 R-3.13.3
Separate User and Management Functions
Official citation: 3.13.3
Class: core · Severity: medium
Statement of the obligation — verify against source
3.13.3
What it means
Separate ordinary user functionality from system-management (administrative) functionality — for example keeping admin interfaces and tools off general-user systems — so a compromise of user functions doesn't expose management capabilities.
Educational reference only — not legal advice. Consult a qualified assessor or attorney for binding compliance determinations.